#3858 XSS in Find zones matching

open
Jamie Cameron
5
2011-03-01
2011-03-01
Anonymous
No

An exploitable XSS was found in " Find zones matching " into Servers>Bind.

Discussion

  • XSS

     
    Attachments
  • Jamie Cameron
    Jamie Cameron
    2011-03-01

    Could you give more details, or an example exploit?

    Webmin's referrer protection should prevent XSS attacks like this completely..